Travis Hassloch x231 writes:
> Part of the ability to interactively hijack connections depends on ACKs
> for sequence numbers larger than the current pointer to be silently
> ignored.  Is this something that can be handled in an implementation,
> or is it a flaw in the TCP design which can't be fixed without breaking
> compliance or negatively impacting utility?

There is an RFC by Steve Bellovin on how to fix this. I believe the
solution is going to be committed post 1.2

Perry